Please see my updated reply above.
If you’re quite sure it’s phishing report it as phishing, if you suspect it’s a scam Google like I did “is {website} a scam” and if it is you’ll be able to report it with the !scam command. For the latter I plan on giving 0.02 upvotes.